EUVD-2022-49388

Malicious code in bioql PyPI...

D-Link DIR-823X Command Injection Vulnerability (CNVD-2025-23369)

The D-Link DIR-823X is a wireless router from China's AUO D-Link. The D-Link DIR-823X suffers from a command injection vulnerability that originates from the misuse of the parameter macList in the file /goform/setwifiblacklists, which can be exploited by an attacker to cause remote command...

CVE-2025-11098

A vulnerability was found in D-Link DIR-823X 250416. The affected element is an unknown function of the file /goform/setwifiblacklists. The manipulation of the argument macList results in command injection. The attack may be performed from remote. The exploit has been made public and could be use...

CVE-2025-11098

CVE-2025-11098 affects D-Link DIR-823X firmware 250416. The vulnerability resides in an unknown function in /goform/set_wifi_blacklists where manipulating the macList argument enables remote command injection. Impact is high for confidentiality, integrity, and availability per NVD/CNA notes; expl...

PT-2025-39760

Name of the Vulnerable Software and Affected Versions D-Link DIR-823X version 250416 Description A flaw exists in D-Link DIR-823X firmware version 250416 that allows for remote command injection. The issue is located in an unknown function within the /goform/set wifi blacklists file. Manipulation...

Tenda O3V2 /goform/setWrlFilterList File Buffer Overflow Vulnerability

Tenda O3V2 is an outdoor wireless bridge from Tenda, China. The Tenda O3V2 suffers from a buffer overflow vulnerability, which originates from the /goform/setWrlFilterList file parameter macList fails to properly validate the length of the input data, which can be exploited by an attacker to...

CVE-2025-7423

A vulnerability classified as critical was found in Tenda O3V2 1.0.0.123880. Affected by this vulnerability is the function formWifiMacFilterSet of the file /goform/setWrlFilterList of the component httpd. The manipulation of the argument macList leads to stack-based buffer overflow. The attack c...

Tenda O3V2 安全漏洞

Tenda O3V2 is an outdoor wireless bridge from Tenda, China. The Tenda O3V2 suffers from a buffer overflow vulnerability, which originates from the /goform/setWrlFilterList file parameter macList fails to properly validate the length of the input data, which can be exploited by an attacker to...

CVE-2022-46586

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacallow sub415B00 function...

CVE-2025-1103

A vulnerability, which was classified as problematic, was found in D-Link DIR-823X 240126/240802. This affects the function setwifiblacklists of the file /goform/setwifiblacklists of the component HTTP POST Request Handler. The manipulation of the argument macList leads to null pointer dereferenc...

PT-2025-5980 · D Link · Dir-823

Name of the Vulnerable Software and Affected Versions: D-Link DIR-823X versions 240126 through 240802 Description: A problematic issue was found in the HTTP POST Request Handler component, specifically affecting the set wifi blacklists function of the /goform/set wifi blacklists file. The...

PT-2024-34556 · Trendnet · Trendnet Tew-652Brp +1

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-651BR version 2.04B1 TRENDnet TEW-652BRP version 3.04b01 TRENDnet TEW-652BRU version 1.00b12 Description: The issue is related to a Store Cross-site scripting XSS vulnerability. This vulnerability can be exploited via the macList...

CVE-2022-46586

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacallow sub415B00 function...

CVE-2022-46584

Affected product: TRENDnet TEW755AP (firmware 1.13B01). Vulnerability: stack overflow in the qcawifi.wifi%d_vap%d.maclist parameter within the kick_ban_wifi_mac_deny function (sub_415D7C). Impact: allows potential arbitrary code execution or control to be gained via network exposure (high impact ...

CVE-2022-46586

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacallow sub415B00 function...

TRENDnet TEW-755AP 缓冲区错误漏洞

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that originates from the lack of size checking of input data in the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacdeny sub415D7C function, which can be exploited by an...

PT-2022-27912 · Trendnet · Trendnet Tew755Ap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW755AP version 1.13B01 Description: A stack overflow issue was discovered, related to the qcawifi.wifi%d vap%d.maclist parameter in the kick ban wifi mac deny sub 415D7C function. Recommendations: For TRENDnet TEW755AP version...

CVE-2021-46456

D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetWLanACLSettings. This vulnerability allows attackers to execute arbitrary commands via the wl0.0maclist parameter...

D-Link Dir-823-Pro 命令注入漏洞

D-Link Dir-823-Pro is a dual-band smart wireless router from China Youxun D-Link. D-Link DIR-823-Pro v1.0.2 is vulnerable to command injection, which can be exploited by attackers to execute arbitrary commands via the wl0. 0 maclist parameter to execute arbitrary commands...

CVE-2020-14074

TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action kickbanwifimacallow with a sufficiently long qcawifi.wifi0vap0.maclist key...